2개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
0
Hi,
Which language are you using, and from where are you planning to call the AWS Secret Manager API ?
You can sign you own request and directly call the GetSecretValue API action.
But keep in mind that you will then need to maintain this part of code and make sure that you are handling credentials discovery and usage properly.
0
If using lambdas, you can consider using Parameter and Secrets lambda layer which allows you to cache secrets in lambda side: https://aws.amazon.com/blogs/compute/using-the-aws-parameter-and-secrets-lambda-extension-to-cache-parameters-and-secrets/
Hi, I am using Java with Micronaut. In the article "sign you own request" the below line is mentioned in step 5: Credential=AKIAIOSFODNN7EXAMPLE/20220830/us-east-1/ec2/aws4_request, what does "AKIAIOSFODNN7EXAMPLE" signifies? Is there any recommended way to add this piece of information to the Micronaut application without any hard coding?
You should rely on an IAM instance profile to get temporary credentials if your application is running on an EC2 instance.
But again, the role of the SDK is to abstract and simplify this process and I would recommend using it. Do you have any specific size constraints that make the size of the SDK such an important factor ?